$ rpki-client -vvf repo-rpki.idnic.net/repo/ad598e99-e9ff-4abe-b08e-226fdd07f9ae/0/3130332e3134342e31382e302f32342d3234203d3e20313339343138.roa File: 3130332e3134342e31382e302f32342d3234203d3e20313339343138.roa (raw, json) Hash identifier: +9l9/c1oHNd6x+rotlaCAqAorgvfQYB/2M8mOFajTwg= Subject key identifier: 30:D4:4E:6A:6B:35:8A:92:A0:FF:B4:46:A0:F2:E3:DF:0B:52:F0:D5 Certificate issuer: /CN=516450A151C5487FCC5911F4C18941CA895B07A5 Certificate serial: 1EA08FECBBF9990883455F2A58234371FE3D8EC2 Authority key identifier: 51:64:50:A1:51:C5:48:7F:CC:59:11:F4:C1:89:41:CA:89:5B:07:A5 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/516450A151C5487FCC5911F4C18941CA895B07A5.cer Subject info access: rsync://repo-rpki.idnic.net/repo/ad598e99-e9ff-4abe-b08e-226fdd07f9ae/0/3130332e3134342e31382e302f32342d3234203d3e20313339343138.roa Signing time: Sat 28 Jun 2025 04:02:22 +0000 ROA not before: Sat 28 Jun 2025 03:57:22 +0000 ROA not after: Sat 27 Jun 2026 04:02:22 +0000 asID: 139418 IP address blocks: 103.144.18.0/24 maxlen: 24 Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/ad598e99-e9ff-4abe-b08e-226fdd07f9ae/0/516450A151C5487FCC5911F4C18941CA895B07A5.crl rsync://repo-rpki.idnic.net/repo/ad598e99-e9ff-4abe-b08e-226fdd07f9ae/0/516450A151C5487FCC5911F4C18941CA895B07A5.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/516450A151C5487FCC5911F4C18941CA895B07A5.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 03 Jul 2025 18:57:53 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 1e:a0:8f:ec:bb:f9:99:08:83:45:5f:2a:58:23:43:71:fe:3d:8e:c2 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=516450A151C5487FCC5911F4C18941CA895B07A5 Validity Not Before: Jun 28 03:57:22 2025 GMT Not After : Jun 27 04:02:22 2026 GMT Subject: CN=30D44E6A6B358A92A0FFB446A0F2E3DF0B52F0D5 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ca:fa:f4:a0:c8:ec:19:17:50:df:c9:e3:59:0f: f1:2f:00:05:c5:fb:06:c9:4b:b5:aa:f6:c6:cb:ea: 61:5e:5f:ff:5e:8b:47:8f:ec:d2:6c:94:c8:aa:1a: ae:63:af:22:43:eb:b6:72:b4:49:a9:b0:7d:85:6a: c0:8d:38:d9:80:da:e2:86:0f:a4:b1:52:4e:79:d1: ec:a1:08:30:4d:3a:1a:cc:59:0d:3b:a2:f3:39:c0: 16:61:58:38:32:5c:62:8e:83:7b:84:85:8a:ee:ef: 75:a9:99:3c:0d:52:0b:0f:2f:3d:7b:26:00:c4:5e: 56:98:11:88:b8:58:84:ac:f9:d3:5f:13:26:f5:0d: 7a:7c:c9:23:f4:f4:fb:e7:33:90:68:a1:7e:cf:85: 52:27:a0:62:c1:51:ed:ba:44:22:ed:7b:28:e9:e2: 57:d5:fb:05:2c:6e:42:0e:b9:3b:37:bb:31:24:b7: bb:59:bf:01:f6:25:a5:b4:ca:c0:00:e5:12:a1:27: 77:b3:b6:99:d3:b2:90:54:8e:f8:a8:a1:dc:1d:d1: 4e:9f:02:99:de:b8:db:9e:09:25:2f:f3:ef:06:d8: 14:fd:39:1e:97:b1:5f:25:f8:6f:76:44:a1:a3:a2: 26:0d:c5:a4:06:ac:5a:eb:cd:15:a4:95:da:16:4a: b5:89 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 30:D4:4E:6A:6B:35:8A:92:A0:FF:B4:46:A0:F2:E3:DF:0B:52:F0:D5 X509v3 Authority Key Identifier: keyid:51:64:50:A1:51:C5:48:7F:CC:59:11:F4:C1:89:41:CA:89:5B:07:A5 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/ad598e99-e9ff-4abe-b08e-226fdd07f9ae/0/516450A151C5487FCC5911F4C18941CA895B07A5.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/516450A151C5487FCC5911F4C18941CA895B07A5.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/ad598e99-e9ff-4abe-b08e-226fdd07f9ae/0/3130332e3134342e31382e302f32342d3234203d3e20313339343138.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 103.144.18.0/24 Signature Algorithm: sha256WithRSAEncryption cf:33:25:51:4b:13:e0:5c:0c:5c:5a:0a:61:6d:3a:ce:6f:cd: ab:11:ea:44:bb:7b:5c:ea:23:a3:b1:40:3d:0e:0f:62:9a:fb: a5:42:ec:5e:43:41:69:05:22:9c:21:c8:64:cb:ac:47:20:16: af:8a:04:8b:72:0a:19:d9:be:46:dd:79:fd:d0:4b:b2:24:6a: b7:40:a4:06:6e:3b:eb:99:ad:d0:52:26:d9:d3:0d:5f:ee:ea: 44:99:1b:e3:67:93:e2:04:a5:51:8e:01:0e:ff:3f:e6:b4:e0: 0c:a0:b6:da:89:61:27:63:db:46:db:a5:8b:73:bd:dd:0a:86: 7e:75:06:62:4c:d7:ad:ac:8b:23:96:ec:cc:ab:eb:85:ff:cc: f9:20:18:f2:bc:bd:75:a4:42:15:57:bd:5d:9d:d8:8d:67:e9: 27:01:d6:7c:98:3e:79:8f:1b:72:43:86:14:2e:d4:7b:52:49: e5:6b:d9:9f:14:74:a5:e7:a0:7c:86:ad:ec:29:b8:d0:ee:fc: 69:eb:07:38:a7:5d:f1:7d:ba:a6:9f:6a:f8:47:ea:09:35:aa: dc:52:80:02:11:49:5f:f7:c5:e1:3c:8e:b2:b5:28:3a:44:71: 74:e6:c1:c5:af:48:de:49:e4:e5:2d:23:06:b6:93:a6:3a:71: e3:8d:40:b9 -----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgIUHqCP7Lv5mQiDRV8qWCNDcf49jsIwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoNTE2NDUwQTE1MUM1NDg3RkNDNTkxMUY0QzE4OTQxQ0E4 OTVCMDdBNTAeFw0yNTA2MjgwMzU3MjJaFw0yNjA2MjcwNDAyMjJaMDMxMTAvBgNV BAMTKDMwRDQ0RTZBNkIzNThBOTJBMEZGQjQ0NkEwRjJFM0RGMEI1MkYwRDUwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDK+vSgyOwZF1DfyeNZD/EvAAXF +wbJS7Wq9sbL6mFeX/9ei0eP7NJslMiqGq5jryJD67ZytEmpsH2FasCNONmA2uKG D6SxUk550eyhCDBNOhrMWQ07ovM5wBZhWDgyXGKOg3uEhYru73WpmTwNUgsPLz17 JgDEXlaYEYi4WISs+dNfEyb1DXp8ySP09PvnM5BooX7PhVInoGLBUe26RCLteyjp 4lfV+wUsbkIOuTs3uzEkt7tZvwH2JaW0ysAA5RKhJ3eztpnTspBUjvioodwd0U6f ApneuNueCSUv8+8G2BT9OR6XsV8l+G92RKGjoiYNxaQGrFrrzRWkldoWSrWJAgMB AAGjggI0MIICMDAdBgNVHQ4EFgQUMNROams1ipKg/7RGoPLj3wtS8NUwHwYDVR0j BBgwFoAUUWRQoVHFSH/MWRH0wYlByolbB6UwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby9h ZDU5OGU5OS1lOWZmLTRhYmUtYjA4ZS0yMjZmZGQwN2Y5YWUvMC81MTY0NTBBMTUx QzU0ODdGQ0M1OTExRjRDMTg5NDFDQTg5NUIwN0E1LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvNTE2NDUwQTE1MUM1NDg3RkNDNTkxMUY0QzE4OTQxQ0E4OTVC MDdBNS5jZXIwgaQGCCsGAQUFBwELBIGXMIGUMIGRBggrBgEFBQcwC4aBhHJzeW5j Oi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBvL2FkNTk4ZTk5LWU5ZmYtNGFiZS1i MDhlLTIyNmZkZDA3ZjlhZS8wLzMxMzAzMzJlMzEzNDM0MmUzMTM4MmUzMDJmMzIz NDJkMzIzNDIwM2QzZTIwMzEzMzM5MzQzMTM4LnJvYTAYBgNVHSABAf8EDjAMMAoG CCsGAQUFBw4CMB8GCCsGAQUFBwEHAQH/BBAwDjAMBAIAATAGAwQAZ5ASMA0GCSqG SIb3DQEBCwUAA4IBAQDPMyVRSxPgXAxcWgphbTrOb82rEepEu3tc6iOjsUA9Dg9i mvulQuxeQ0FpBSKcIchky6xHIBavigSLcgoZ2b5G3Xn90EuyJGq3QKQGbjvrma3Q UibZ0w1f7upEmRvjZ5PiBKVRjgEO/z/mtOAMoLbaiWEnY9tG26WLc73dCoZ+dQZi TNetrIsjluzMq+uF/8z5IBjyvL11pEIVV71dndiNZ+knAdZ8mD55jxtyQ4YULtR7 Uknla9mfFHSl56B8hq3sKbjQ7vxp6wc4p13xfbqmn2r4R+oJNarcUoACEUlf98Xh PI6ytSg6RHF05sHFr0jeSeTlLSMGtpOmOnHjjUC5 -----END CERTIFICATE-----Generated at Tue Jul 1 16:47:21 2025 by rpki-client